If consequences matter, they should apply to vendors, too
Washington has rediscovered consequences. Just not consistently. The March 6 executive order rests on a simple, correct idea: cyber-enabled fraud persists because it is profitable,…
Category: Cyberscoop
FBI says even in an AI-powered world, security basics still matter
Artificial intelligence may be enhancing cyber threats, but the defensive approach to those AI-amplified attacks remains the same, a top FBI official said Tuesday. “We…
Microsoft’s monthly Patch Tuesday is first in 6 months with no actively exploited zero-days
Microsoft addressed 83 vulnerabilities that cut across its broad portfolio of enterprise software and underlying services in its latest security update. The company’s Patch Tuesday…
Federal judge blocks Perplexity’s AI browser from making Amazon purchases
A federal judge has blocked Perplexity, makers of the Comet AI browser, from accessing user Amazon accounts and making purchases on their behalf. In an…
Critical defect in Java security engine poses serious downstream security risks
A maximum-severity vulnerability in pac4j, an open-source library integrated into hundreds of software packages and repositories, poses a significant security threat, but has thus far…
No, it’s not ‘unnecessarily burdensome’ to control your own data
According to a recent report, the State Department sent a cable urging U.S. diplomats to oppose international data sovereignty regulations like GDPR, characterizing these guardrails…
Sean Cairncross lays out what’s coming next for Trump’s cyber strategy
The Trump administration is plotting an interagency body to confront malign hackers, pilot programs to secure critical infrastructure across states and other steps tied to…
We’ve seen ransomware cost American lives. Here’s what it will actually take to stop it.
Flights canceled. Emergency rooms shut down. Centuries-old companies shuttered. Ransomware and other similar cyberattacks have become so routine that even those serious human and economic…
LLMs are getting better at unmasking people online
Can anonymity on the internet survive in the age of generative AI? A recent study from ETH Zurich examined how Large Language Models can combine information…
Global coalition dismantles Tycoon 2FA phishing kit
Tycoon 2FA, a major phishing kit and platform that allowed low-skilled cybercriminals to bypass multifactor authentication and conduct large-scale adversary-in-the-middle attacks, was dismantled Wednesday by…
Cisco reveals 2 max-severity defects in firewall management software
Cisco released information on a pair of max-severity vulnerabilities in its firewall management software Wednesday that unauthenticated, remote attackers could exploit to obtain the highest…
Phobos ransomware leader pleads guilty, faces up to 20 years in prison
Russian national Evgenii Ptitsyn pleaded guilty to running the Phobos ransomware outfit that extorted more than $39 million from more than 1,000 victims globally, the…